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ABSTRACT 



A network-based sales system includes at least one buyer 
computer for operation by a user desiring to buy a product 
at least one merchant computer, and at least one payment 
computer The buyer c»mpulcr, the merchant computer, and 
the payment computer arc interconnected by a computer 
network. The buyer computer is programmed to receive a 
user request for purchasing a product, and to cause a 
payment message to be sent to the payment computer that 
comprises a product identifier identifying the product. The 
payment computer is programmed to receive the payment 
message, to cause an access message to be created that 
comprises the product identifier and an access message 
autheniicator based on a cryptographic key. and to cause the 
access message to be sent to the merchant computer The 
merchant computer is programmed to receive the access 
message, to verify the access message aulhenticator to 
ensure that the access message aulhenticator was created 
using the cryptographic key. and lo cause the product to be 
sent to the user desiring to buy the product. 

38 Claims;, 25 I>rawing Slieets 
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buyer computer sends payment URL B to 
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Help 



Docunent Title: 



Mead Data Central: Internet infomation 



Document URL: http://wv.apeniiiar)cetcois/deito/ri5/naII/Bie 



% 



Mead Data Central: Internet Information 



Tejct of Abstract 
of Article 



VERONICA: A GOPHER NAVIGATIONAL TOOL ON THE 
INTERNET 

October, 1993 



November 28, 1993 

ix:'s debut on the Internet: Library of Congress catalog On tihe 
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Help 



Document Title: 
Document URL: 



Open Harket Payment 



http: / /paynent . openmarket . con/ben/npli-payiient: 



Open Market Payment 



You have selected an item that requires payment 

]iaroliaat:Test Merchant 
Deaoriptioft:Mead Data Central Article 
Aaoimt:2.85(US currency) 

If you have an Open Karket account click on "continue** below and 
you will be prompted for 

your account name and password. If you do not have an account, 
you can establish one 

on-line and return to this page to continue your piirchase. 



I Open I an account on-line 
Continue | with payment transaction. 



For demonstrations use the account name testueerOopeamarkat. com with 
the password testuaer. 



Open HatKAti, Inc^ 



Data transfer complete: 
l lHomel 



laonellRew' Window! fCtose WIndowl 
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Help 
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Oocumont URU 



Establish openNarKet: Account 



] 



http : / /payment . openmarket: . com/ service /destablll | 



Card Hunber: 



c 



] 



Expiration Date: |^ 



(format MM/YY) 



Check the appropriate boxes: 
Ql am the owner of the above credit card. 

□The above address is also the billing address for this.credit card. 

Your OpenHarket: account statement Is available on*llne.At your option you nay a 
copy of your statement automatically sent to your e-nall address at treeJcly or monthly 
intervals. Please choose a stateaent option* 

^Weekly statements ^Monthly statements ^No e-mail statements 



Account name and password 

Please choose an account naae and password for your OpenMarlcet acc»unt. He 
suggest using an account na&e that is unique and easy to reiteaber such as your 
e-nail address. Your password should be 8 characters or longer. 



Account Name 



Password 
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l lCtonetlNew Window ^ICIose WfaidoWl 



FIG. 7 



U.S. Patent 



Jun. 1, 1999 



Sheet 19 of 25 



5,909,492 



E 
o 
o 

■ 

c5 

E 
c 
o 

CL 
O 

m 

E 



3 
O 
Q 

(5 



• 2 

o O 

o k- 

a> o 

2 o 
Q.E 
« g 

c o 

E = 
o B 

Q 111 



CD 

o 
c 

CO 

o 



o 



00 

2 
LL 



U.S. Patent 



Jun. 1, 1999 



Sheet 20 of 25 



5,909,492 
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Document URL: ht:tp://paynent.openiftar)cet.coii/ben/iu>h-payinent 



Document Title: open Market Paynent 



IS 



Open Market Payment 



You have selacted an Itiea that you have purchased recently. 

Marotaaat: Test Merchant 

Desariptlon: Mead Data Central Article 

ABOiint: 2.85 (US currency) 

This could happen because you would like to buy the iten again or It may have happened 
by accident. 

You can: 

• Go directly to the previous item 

• Go ahead and buy the item again 



Open Market, Xnc. 



Data transfer complete: 



l iaoneilNew WindowUCIose WIndowl 



iBacKlfForwiFgHHofnei 
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LC's debut on the Internet; Library of Congr 
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Document Title: 
Document URL: 



Sttari: Statement for Teal: User 



tit:^ : / /payvent . opeiuarket: . con/ in/nph-stateae 




Infonaatlon about the item. 

Transactions in October 1994 



Men Oct 
Tue Oct 
Tue Oct 
Tue Oct 
Tue Oct 
Tue Oct 
Wed Oct 
Wed Oct 
Wed Oct 
Wed Oct 
Wed Oct 
wed ocrt 
Wed Oct 



3 Test 

4 TMt 
4 Test 
4 Teat 
4 Test 

4 Test 

5 Tsat 
5 Test 
5 Teat 
5 Test 
5 Test 
5 Test 
5 Test 



Merobaat Dilbert eubscrlption 20 seconds asount $0.10 



Merobant Mead Data Central Article anount 
Meroha&t Head Data Central Article anount 
Kercbant Head Data Central Article asount 
Keroha&t N.y. Times Article amount $0.50 
Merohaiit Head Data Central Article amount 
Merehaat Head Data Central Article euoount 
Xerehant Head Data Central Article amount 
Xerchant Head Data Central Article amount $2.95 
Merchant Head Data Central Article asount $2.95 
Merchant Head Data Central Article amount 
Merchant Head Data Central Article amoiint 
Merchant Mead Data Central Article amount 



$2.95 
$2.95 
$2.95 

$2.95 
$2.95 
$2.95 



$2.95 
$2.95 
$2.95 



Your total is 33.05. 

Previous Statennents 

• September 1994 

• August 1994 

Return to your Kevest Statement 

Feedbadc 

you can send us comments and suggestions here. 
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Document Title: 



Snart statement Detail 



Document URU http://payinent.opexuQarket.com/ec632fl54cca02X 



S 



Saart S^afcement 



Smart Statament Detail 

nils is th« det:all«d infocufcion about a particular tranaaction Croit your 

Tranaacllon Information 

url: http;//www.openBarlcet.con/denos/au9i5/maII/inead-fingerprlnt/itt)cartlcle.c90 
transact ion.Iog_id: 50254.0 
currency: US 

txansactlon_<iate: 781377633 
initiator: l.O 
expiration: 2592000 

description: Maad Data Central Article 
aBOunt: 2.95 
bene £ ic iary : 3,0 
ip_addr<Ksat 199.170.183.13 
tranoaotion^type. p 
doaain: aead. internet- l 



Merchant Information 

tolephone: 617-621-9501 

address^i: Open Market , Inc. 

addreas_2: 215 First Street 

tax; 617-621-1703 

address_3: Canbridge, MA 

eaail ; testmerchantfopennarlcet . com 

prlncipal.nave: Test Merchant 



Data transfer complete: 

jBacki(FoifwardllHome||Heioad||Open^.||Sava AiI||Clone||New WIndowllClose Windowl 
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Help 



Document Title: 
Document URU 



smart Statenent Detail 



http: / /payment . openmarket . com/ec632f 154cc8021 




url : http : / /ww. opennarJwt . com/d«nos/ auglS/mall /mead- f Ixigerpr int/»*articl« . coo 
transaction_log_id; 502S4.0 
catxency: US 

transaction^date: 781377633 
Initiator: i.o 
e]q;>ixation: 2592000 

description: Head Data Central Article 

aaount: 2.95 

beneficiary: 3.0 

ip.addreas: 199.170.183.13 

transact ion__type . p 

domain: Bead. intemet-l 



Merchant Information 

telephone: 617-621-9S01 

addres8_l: Open Market, inc. 

addreBS_2: 215 First Street 

fax: 617-621-1703 

addreBs_3: Canbridge, MA 

eaail: testaerchanteopenmarket . coa 

princlpal.name: Test Merchant 

honie.iirl: 

country: US 

posta l_code : 02 14 2 



Feedback 

Vou can send us coaanents and suggestions here. 



Data transfer complete: 

|Backf|Forward||Hom9»Reload||OpenH|Save A8..J|CloneitNew Window! fciose Windowl 



FIG. 13 
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FflB Options Navigate Annotate 



Document Title: open Market Feedback 
Document URL* 



httqp: //payment.openmarket. com/ben/feedback, eg | 



Or if you prefer, you can send your conments via electronic mail to 

feedbacfc^penaarltet.eoB orvia FAX to^i. 617. 621. 1703. If you would like a reply 
please include your e-nail address. 



Your Open Market accound name (optional) ; 



Your E-mail address (optional) ; 



Subject: 



Your comments: 



I submit FeedbaciT^ 



Data iranafer complete: 
|Back|fForward||Home||Reload||Open^J 



|Clone||N?;r Window! fciose WIndowl 



FIG. 14 
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NETWORK SALES SYSTEM 

CROSS REFERENCE TO RELATED 
APPUCATION 

This is a continuation of U.S. patent appLicatioo Ser. No. 
08/328,133, filed Oct. 24, 1994, now U.S. Pat. No. 5,715, 
314. 

REFERENCE TO MICROFICHE APPENDICES 

Microfiche Appendices A-G are being submitted with the 
prcsent application, t)eing 4 sheets with 220 total pages. 

BACKGROUND OF THE INVENTION 

This invention relates to user-interactive network sales 
systems for implementing an open marketplace for goods or 
services over computer networks such as the lateraet. 

U,S. patent application Ser. No. 08/168^19, filed Dec. 16, 
1993 by David K. Giffoid and eotided "Digital Active 
Advertising," now abandoned, the entire disclosure of which 
is hereby incorporated herein in its entirety by reference, 
describes a network sales system that includes a pluraUty of 
buyer computers, a plurality of merdiant computers, and a 
payment computer. A user at a buyer computer asks to have 
advertisements displayed, and the buyer computer requests 
advertisements from a merchant computer, which sends the 
advertisements to the buyer computer. The user then 
requests purchase of an advertised product, and the buyer 
computer sends a purchase message to the merchant com- 
puter. The merchant computer constructs a payment order 
that it sends to the payment computer, which authorizes the 
purchase and sends an authorization message to the mer- 
chant computer. When the merchant computer receives the 
authorization message it sends the product to the buyer 
computer. 

The above-mentioned patent application also describes an 
alternative implementation of the network sales system in 
which, when the user requests purchase of an advertised 
product, the buyer computer sends a payment order directly 
to the payment computer, which sends an authorization 
message back to the buyer computer that includes an 
unforgeable certificate that the payment order is valid. The 
buyer computer then const mcts a purchase message that 
includes the unforgeable certificate and sends it to the 
merchant computer. When the merchant computer receives 
the purchase request it sends the product to the buyer 
computer, based upon the pre -authorized payment order. 

SUMMARY OF THE INVENTION 

In one aspect, the invention provides a network -based 
sales system that includes at least one buyer computer for 
operation by a user desiring to buy a product, at least one 
merchant computer, and at least one payment computer. The 
buyer computer, the merchant computer, and the payment 
computer are interconnected by a computer network. The 
buyer computer is programmed to receive a user request for 
purchasing a product, and to cause a payment message to be 
sent to the payment computer that comprises a product 
identifier identifying the product. The payment computer is 
programmed to receive the payment message, to cause an 
access message to be created that comprises the product 
identifier and an access message authenticator based on a 
cryptographic key, and to cause the access message to be 
sent to the merchant computer. The merchant computer is 
programmed to receive the access message, to verify the 
access message authenticator to ensure that the access 
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message authenticator was created using the cryptographic 
key, and to cause the product to be sent to the user desiring 
to buy the product. 
The invention provides a simple design architectiu'e for 

5 the network sales system that allows the merchant computer 
to respond to payment orders from the buyer computer 
without the merdiant computer having to communicate 
directly with the payment computer to ensure that the user 
is authorized to purchase the product and without the 

10 merchant computer having to store information in a database 
regarding which buyers are authorized to purchase which 
products. Rather, when the merchant computer receives an 
access message from the buyer computer identifying a 
product to be purchased, the merchant computer need only 

IS check the access message to ensure that it was created by the 
payment computer (thereby establishing for the merchant 
computer that the buyer is authorized to purchase the 
product), and then the merchant computer can cause the 
product to be sent to the buyer computer who has been 

20 authorized to purchase the product. 

In another aspect, the invention features a network-based 
sales system that includes at least one buyer computer for 
operation by a user desiring to buy products, at least one 
shopping cart computer, and a shopping cart database con- 

25 nected to the shopping cart computer. The buyer computer 
and the shopping cart computer are interconnected by a 
computer network. The buyer computer is programmed to 
receive a plurality of requests from a user to add a plurality 
of respective products to a shopping cart in the shopping cart 

30 database, and, in response to the requests to add the 
products, to send a plurality of respective shopping cart 
messages to the shopping cart computer each of which 
includes a product identifier identifying one of the plurality 
of products. The shopping cart computer is programmed to 

35 receive the plurality of shopping cart messages, to modify 
the shopping cart in the shopping cart database to reflect the 
plurality of requests to add the plurality of products to the 
shopping cart, and to cause a payment message associated 
with the shopping cart to be created. The buyer computer is 

40 programmed to receive a request from the user to purchase 
the plurality of products added to the shopping cart and to 
cause the payment message to be activated to initiate a 
payment transaction for the plurality of products added to 
the shopping cart. 

45 In another aspect, the invention features a network-based 
link message system that includes at least one client com- 
puter for operation by a client user and at least one server 
computer for operation by a server user. The client computer 
and the server computer are interconnected by a computer 

50 network. The client computer is programmed to send an 
initial link message to the server computer. The server 
computer is programmed to receive the initial link message 
from the client computer and to create, based on information 
contained in the initial link message, a session link message 

55 that encodes a state of interaction between the client com- 
puter and the server computer. The session link message 
includes a session link authenticator, computed by a cryp- 
tographic function of the session link contents, for authen- 
ticating the session link message. The server computer is 

60 programmed to cause the session link message to be sent to 
the client computer. The client computer is programmed to 
cause the session link message to be sent to a computer in 
the network that is programmed to authenticate the session 
link message by examining the session link authenticator 

65 and that is programmed to respond to the session link 
message based on the state of the interaction txiween the 
client computer and the server computer. 
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In another aspect, the inveatioD features a net work -based 
sales system that includes a merchant database having a 
plurality of digital advertisemeots and a plurality of respec- 
tive product 5ilfillment items, at least one creation computer 
for creating the merchant database, and at least one merchant 5 
computer for causing the digital advertisements to be trans- 
mitted to a user and for causing advertised products to be 
transmitted to the user. The creation computer and the 
merchant computer are interconnected by a computer net- 
work. The creation computer is programmed to create the 
merchant database, and to transmit the digital advertise- 
ments and the product fulfillment items to the merchant 
computer. The merchant computer is programmed to receive 
the digital advertisements and product fulfillment items, to 
receive a request for a digital advertisement from a user, to 
cause the digital advertisement to be sent to the user, to 
receive from the user an access message identifying an 
advertised product, and to cause the product to be sent to the 
user in accordance with a product fulfillment item corre- 
sponding to the product. 

In another aspect, the invention features a hypertext 20 
statement system that includes a client computer for opera- 
tion by a client user and one or more server computers for 
operation by a server user. The client computer and the 
server computers are interconnected by a computer network. 
At least one of the server computers is programmed to 25 
record purchase transaction reconls in a database. Each of 
the purchase transaction records includes a product descrip- 
tion. The server computer is programmed to transmit a 
statement document that includes the purchase transaction 
records to the client computer. The cUent computer is ^ 
programmed to display the product descriptions, to receive 
a request from the client user to display a product corre- 
sponding to a product description displayed by the client 
computer, and to cause a product hypertext link derived from 
a purchase transaction record to be activated. At least one of 
the server computers is programmed to respond to activation 
of the product hypertext link by causing the product to be 
sent to the client computer 

In another aspect, the invention features a network pay- 
ment system that includes at least one buyer computer for 
operation by a user desiring to buy a product and at least one ^ 
payment cx)mputer for processing payment messages from 
the buyer computer. The buyer computer and the payment 
computer are interconnected by a computer network. The 
buyer computer is programmed to cause a payment message 
to be sent to the payment computer. The payment message 45 
includes a product identifier identifying the product that the 
user desires to buy. The payment computer is programmed 
to receive the payment message, to cause an access message 
to be created to enable the user to access the product, and to 
record a purchase transaction record in the settlement data- 50 
base. The buyer computer is programmed to cause a request 
for purchase transaction records to be sent to the payment 
computer. The payment computer is programmed to receive 
the request for purchase transaction records and to cause a 
document derived from the purchase transaction records to 55 
be sent to the buyer computer. 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. I is a block diagram of a network sales system in 
accordance with the present invention. 

FIG. 2 (2-A through 2-1) is a flowchart diagram illustrat- 
ing the operation of a purchase transaction in the network 
sales system of FIG. 1. 

RG. 3 (3-A through 3-B) is a flowchart diagram illus- 
trating the use of a shopping carl for the purchase of 65 
products in connection with the network sales system of 
FIG. 1. 
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FIG. 4 (4-A through 4-C) is a flowchart diagram illus- 
trating the operation of a smart statement in the network 
sales system of FIG. 1. 

FIG. 5 is a screen snapshot of an advertising document 
that the nnerchant computer sends to the buyer computer in 
FIG. 2. 

FIG. 6 is a screen snapshot of a confirmation document 
that the payment computer sends to the buyer computer in 
FIG. 2. 

FIG. 7 is a screen snapshot of a new account document 
that the payment computer sends to the buyer computer in 
FIG. 2, 

FIG. 8 is a screen snapshot of an account name prompt 
that the buyer computer creates in FIG. 2. 

RG. 9 is a screen snapshot of a document that the 
payment computer sends to the buyer computer in FIG. 2 
and that provides an option either to repurchase or to use a 
previously purchased access. 

RG. 10 is a screen snapshot of a fulfillment document that 
the merchant computer sends to the buyer computer in FIG, 
2. 

RG. 11 is a screen snapshot of a smart statement docu- 
ment that the payment computer sends to the buyer com- 
puter in RG. 4. 

RGS. 12 and 13 are screen snapshots of a transaction 
detail document that the payment computer sends to the 
buyer computer in FIG. 4. 

RG. 14 is a screen snapshot of a customer service form 
that the payment computer sends to the buyer computer in 
FIG. 4. 

DETAILED DESCRIPTION 

With reference to FIG. 1. a network sales system in 
accordance with the present invention includes a buyer 
computer 12 operated by a user desiring to buy a product, a 
merchant computer 14, which may be operated by a mer- 
chant willing to sell products to the buyer or by a manager 
of the network sales system, a payment computer 16 typi- 
cally operated by a manager of the network sales system, 
and a creation computer 20 typically operated by the mer- 
chant. The buyer, merchant, payment, and creation comput- 
ers are all inter-connected by a computer network 10 such as 
the Internet. 

Creation computer 20 is programmed to build a "store" of 
products for the merchant. A printout of a computer program 
for use in creating such a "store" in accordance with the 
present invention is provided as Appendix F. 

The products advertised by merchant computer 14 may 
be, for example, newspaper or newsletter articles available 
for purchase by buyers. Creation computer 20 creates a 
digital advertisement database 18 that stores advertising 
documents (which may for example be in the form of 
summaries of newspaper or newsletter articles, accompanied 
by prices) and product fulfillment items (which may be the 
products themselves if the products can be transmitted over 
the network, or which may be hard goods identifiers if the 
products are hard goods, i.e., durable products as opposed to 
information products). Creation computer 20 transmits con- 
tents of the advertising document database 18 to merchant 
computer 14 to enable the merchant computer to cause 
advertisements and products to be sent to buyers. Merchant 
computer 14 maintains advertising documents locally in 
advertising document database 15. In an alternative 
embodiment, the creation computer does not have a local 
digital advertisement database, but instead updates a remote 
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advertising document database .on a merchant computer address to see if it matches the one specified in the payment 

These updates can be accomplished using HTML forms or URL (step 42). If it does not match, the payment computer 

other remote database technologies as is understood by sends a document to the buyer computer indicating that 

practitioners of the art. access to the network payment system is denied (step 43). 

Payment computer 16 has access to a settlement database 5 Otherwise, the payment computer sends a payment confir- 
22 in which payment computer 16 can record details of tnation document to the buyer computer, the payment con- 
purchase transactions. The products may be organized into firmation document including an "open" link and a "con- 
various "domains" of products, and payment computer 16 tinue" link (step 44). 

can access settlement database 22 to record and retrieve An example of a confirmation document is shown in FIG. 

records of purchases of products falling within the various 6. The confirmation document asks the user to click on a 

domains. Payment computer 16 also has access to a shop- "continue" button if the user already has an account with the 

ping cart database 21 in which a "shopping cart" of products payment computer, or to click on au "open" button if the 

that a user wishes to purchase can be maintained as the user user does not already have an account and wishes to open 

shops prior to actual purchase of the contents of the shop- one. 

ping cart. 15 jf ^^j. "open" button (step 46), the buyer 
Mth reference to FIG. 2, a purchase transaction begins computer sends payment URL C to the payment computer 
when a user at buyer computer 12 requests advertisements (step 48), payment URL C being similar to payment URL A 
(step 24) and buyer computer 12 accordingly sends an but also indicating that the user does not yet have an account, 
advertising document URL (universal resource locator) to The payment computer creates a new account document 
merchant computer 14 (step 26). The merchant computer ^° (step 50) and sends it to the buyer computer (step 52). An 
fetches an advertising document from the advertising docu- example of a new account document is shown in FIG. 7. 
ment database (step 28) and sends it to the buyer computer When the user receives the new account document he enters 
(step 30). An example of an advertising document is shown the new account name, an account password, a credit card 
in FIG. 5. Details of URLs and how they are used are found number, the credit card expiration date, and security infor- 
in Appendix G. mation such as the maiden name of the user's mother (step 
llie user browses through the advertising document and 54), and presses a "submit" button (not shown in FIG. 7). 
eventually requests a product (step 32). This results in the The buyer computer sends the new account information to 
buyer computer sending payment URL A to the payment ihe payment computer (step 56), which enters the new 
computer (step 34). Payment URL A includes a product account in the settlement database (step 58). 
identifier that represents the product the user wishes to buy. If the user clicks on the "continue" button (step 60), the 
a domain identifier that represents a domain of products to buyer computer sends payment URL B to the payment 
which the desired product belongs, a payment amount thai computer (step 62), payment URL B being similar to pay- 
represents the price of the product, a merchant computer ment URL Abut also indicating that the user already has an 
identifier that represents merchant computer 14, a merchant account. The payment computer then instructs the buyer 
account identifier that represents the particular merchant computer to provide the account name and password (steps 
account to be credited with the payment amount, a duration 64 and 66), and the buyer computer prompts the user for this 
time that represents the length of time for which access to information by creating an account name prompt (example 
the product is to be granted to the user after completion of shown in FIG. 8) and a similar password prompt. The user 
the purchase transaction, an expiration time that represents enters the information (step 68) and the buyer computer 
a deadline beyond which this particular payment URL sends the account name and password to the payment 
cannot be used, a buyer network address, and a payment computer (step 70). 

URL autbenticator that is a digital signature based on a jhe payment computer verifies whether the user name 
cryptographic key. The payment URL autbenticator is a hash and password are correct (step 72). If they are not correct 
of other mformauon m the payment URL, the hash being the payment computer sends a document to the buyer 
defined by a key shared by the merchant and the operator of computer indicating that access to the network sales system 
the payment computer. is denied (step 74). Otherwise, the payment computer deter- 
In an alternative embodiment, step 34 consists of the mines whether additional security is warranted, based on, 
buyer computer sending a purchase product message to the e.g., whether the payment amount exceeds a threshold (step 
merchant computer, and the merchant computer provides 50 73), If additional security is warranted, the payment com- 
payment URL A to the buyer computer in response to the puter creates a challenge fonn document and sends it to the 
purchase product message. In this alternative embodiment, buyer computer (step 75), The user enters the security 
payment URL A contains the same contents as above. The information (step 77), the buyer computer sends the security 
buyer computer then sends the payment URL A it has information to the payment computer (step 79), and the 
received from the merchant computer to the payment com- 55 payment computer determines whether the security infor- 
puter. mation is correct (step 81). If it is not correct, the payment 
When the payment computer receives the payment URL computer sends a document to the buyer computer indicat- 
it verifies whether the payment URL autbenticator was "^S ^^^^ access to the network sales system is denied (step 
created from the contents of the payment URL using the S^)- 

cryptographic key (step 36). If not, the payment computer 60 If the security information is correct, or if additional 

sends a document to the buyer computer indicating that security was not warranted, the payment computer checks 

access to the network sales system is denied (step 38), the settlement database to determine whether the user has 

Otherwise, the payment computer determines whether the unexpired access to the domain identifier contained in the 

expiration time has past (step 40). If it has, the payment payment URL (step 82). If so, the payment computer sends 
computer sends a document to the buyer computer indicat- 65 to the buyer computer a document providing an option either 

ing that the time has expired (step 41), Otherwise, the to repurchase or to use the previously purchased access (step 

payment computer checks the buyer computer network 84). An example of such a document is shown in FIG. 9. The 
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user can respODd to (he recent purchase query document by 
choosing to access the previously purchased document (step 
85) or to go ahead and buy the currently selected product 
(step 86). 

If the user chooses to access the previously purchased 
document, the buyer computer skips to step 92 (see below). 
If the user chooses to buy the currently selected product, the 
payment computer calculates an actual payment amount that 
may differ from the payment amount contained in the 
payment URL (step 87). For example, the purchase of a 
product in a certain domain may entitle the user to access 
other products in the domain for free or for a reduced price 
for a given period of time. 

The payment computer then verifies whether the user 
account has sufiScient funds or credit (step 76). If not, the 
payment computer sends a docuiment to the buyer computer 
indicating that the user account has insufficient funds (step 
78). Otherwise, the payment computer creates an access 
URL (step 80) that includes a merchant computer identifier, 
a domain identifier, a product identifier, an indication of the 
end of the duration time for which access to the product is 
to be granted, the buyer network address, and an access URL 
authenticator that is a digital signature based on a crypto- 
graphic key. The access URL authenticator is a hash of other 
information in the access URL, the hash being defined by a 
key shared by the merchant and the operator of the payment 
computer. The payment computer then records the product 
identifier, the domain, the user account, the merchant 
account, the end of duration time, and the actual payment 
amount in the settlement database (step 88). 

The payment computer then sends a redirect to access 
URL to the buyer computer (step 90), which sends the access 
URL to the merchant computer (step 92). The merchant 
computer verifies whether the access URL authenticator was 
created from the contents of the access URL using the 
cryptographic key (step 94). If not, the merchant computer 
sends a document to the buyer computer indicating that 
access to the product is denied (step 96). 

Otherwise, the merchant computer verifies whether the 
duration time for access to the product has expired (step 98). 
This is done because the buyer computer can request access 
to a purchased product repeatedly. If the duration time has 
expired, the merchant computer sends a document to the 
buyer computer indicating that the time has expired (step 
100). Otherwise the merdiant computer verifies that the 
buyer computer network address is the same as the buyer 
network address in the access URL (step 101), and if so, 
sends a fulfillment document to the buyer computer (step 

102) . which is displayed by the buyer computer (step 104). 
An example of a ftilfillment document is shown in FIG. 10. 
Otherwise, the merchant computer sends a document to the 
buyer computer indicating that access is not allowed (step 

103) . 

With reference now to FIG. 3, when the merchant com- 
puter sends the advertising document to the buyer computer, 
the user may request that a product be added to a shopping 
cart in the shopping cart database rather than request that the 
product be purchased immediately. The buyer computer 
sends a shopping cart URL to the payment computer (step 
108), the shopping cart URL including a product identifier, 
a domain identifier, a payment amount, a merchant computer 
identifier, a merchant account identifier, a duration time, an 
e)qpiration time, and a shopping cart URL authenticator that 
is a digital signature based on a cryptographic key. The 
shopping cart URL authenticator is a hash of other infor- 
mation in the shopping cart URL, the hash being defined by 
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a key shared by the merchant and the operator of the 
payment computer. 

The payment computer verifies whether the shopping cart 
URL authenticator was created from the contents of the 

^ shopping cart URL using a cryptographic key (step 110). If 
not, the payment computer sends a document to the buyer 
computer indicating that access to the network sales system 
is denied (step 112). Otherwise, before any modification to 
a user's shopping cart is allowed, user authentication is 

10 performed (step 113) in a manner analogous to steps 40-81. 
Once the user is authenticated, the payment computer cre- 
ates or updates a payment URL for the shopping cart (step 
114). 

The user then either requests more advertisements (step 
24 in FIG, 2) and possibly adds another product to the 
shopping carl, requests display of the shopping cart (step 
116), or requests purchase of the entire contents of the 
shopping cart (step 124). If the user requests di^lay of the 
shopping cart (step 116), the buyer computer sends a fetch 

^ shopping cart request to the payment computer (step 118), 
and the payment computer and buyer computer (step 119) 
perform steps analogous to steps 64^1. The payment com- 
puter returns the contents of the shopping cart to the buyer 
computer (step 120), which di^lays the contents of the 

^ shopping cart (step 122). If the user requests that the entire 
contents of the shopping cart be purchased (step 124) the 
buyer computer causes the payment URL for the shopping 
cart to be activated (step 126) and the payment URL is 
processed in a manner analogous to the processing of 

^ payment URLs for individual products (beginning with step 
36 in FIG. 2). 

With reference now to FIG. 4, a user can request display 
of a "smart statement" that lists purchase transactions for a 
given month (step 128). When the buyer computer receives 
such a request, it sends a smart statemerit URL to the 
payment computer (step 130). 

When the payment computer receives the smart statement 
URL, it verifies whether the smart statement URL authen- 

^ ticator was created from the contents of the smart statement 
URL using a cryptographic key (step 132). If not, the 
payment computer sends a document to the buyer computer 
indicating that access is denied (step 134). Otherwise, the 
payment computer checks to determine whether the buyer 

4^ network address in the smart statement URL matches the 
buyer computer's actual network address (step 136). If not, 
the payment computer sends a document to the buyer 
computer indicating that access is denied (step 138). Oth- 
erwise (step 140), the payment computer and buyer com- 

5Q puter perform a set of steps analogous to steps 64-81 in FIG. 
2 (payment computer requests account name and password, 
user provides the requested information, and payment com- 
puter verifies the information). 

In an alternative embodiment steps 132—138 are omitted. 

55 After verification of account information is complete, the 
payment computer retrieves the requested setdement data 
from the settlement database, creates a smart statement 
document for the buyer, and sends the smart statement 
document to the buyer computer (step 142). An example of 

60 a smart statement docimient is shown in FIG. 11. Each 
purchase transaction record in the smart statement document 
includes the data of the transaction, the name of the 
merchant, an identification of the product, and the payment 
amount for the product. The smart statement document also 

65 includes a transaction detail URL for each purchase trans- 
action (these URLs, or hypertext links, are discussed below 
and are not shown in FIG. U). The smart statement docu- 
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ment also identifies previous statements that the user may 
wish to have displayed. 

The buyer computer displays the retrieved document (step 
144), and the user may request transaction details for a 
particular transaction listed on the smart statement (step 
146). If so, the buyer computer sends a transaction detail 
URL (or "payment detail URL") to the payment computer 
(step 14^). The transaction detail URL includes a transaction 
identifier, a buyer network address, and a transaction detail 
URL authenticator. When the payment computer receives 
the transaction detail URL, it performs (step 150) a set of 
steps analogous to steps 132-140 (verification of URL 
authenticator, buyer network address, and account 
information). The payment computer then retrieves from the 
settlement database data corresponding to the payment 
transaction specified in the transaction detail URL, creates a 
transaction detail document, and sends it to the buyer 
computer (step 152). 

An example of a transaction detail document is shown in 
FIGS. 12 and 13. The document displays a number of items 
of information about the transaction, including the transac- 
tion date, end of the diu'ation time (''expiratioa'*), a descrip- 
tion of the product, the payment amoimt, the domain cor- 
responding to the product, an identification of the merchant, 
and the merchant's address. 

The smart statement document and the transaction detail 
document both include customer service URLs (hypertext 
links) that aUow the user to request customer service (i.e., to 
send comments and suggestions to the payment computer). 
When the user requests customer service (step 154), the 
buyer computer sends the customer service URL to the 
payment computer (step 156), which creates a customer 
service form and sends it to the buyer computer (step 158). 
An example of a customer service form is shown in FIG. 14. 
The user types comments into the customer service form 
(step 160), and the buyer computer sends the user's com- 
ments to the payment computer (step 162). The payment 
computer then posts the user comments and sends a thank 
you document to the buyer computer (step 164). 

A user may request display of a product included in the 
smart statement. When the user requests that the product be 
displayed (step 166), the buyer computer sends the access 
URL contained in the smart statement document to the 
merchant computer (step 168), and the buyer computer and 
merchant computer perform a set of steps analogous to steps 
94-104 in FIG. 2 (authentication of access URL. verification 
whether duration time has expired, verification of buyer 
network address, and transmission of fulfillment document 
to buyer computer). 

Whenever the present application states that one computer 
sends a URL to another computer, it should be understood 
that in preferred embodiments the URL is sent in a standard 
HTTP request message, unless a URL message is specified 
as a redirection in the present application. The request 
message includes components of the URL as described by 
the standard HTTP protocol definition. These URL compo- 
nents in the request message allow the server to provide a 
response appropriate to the URL. The term "URL" as used 
the present application is an example of a "link," which is a 
pointer to another document or form (including multimedia 
documents, hypertext documents including other links, or 
audioMdeo documents). 

When the present application states that one computer 
sends a document to another computer, it should be under- 
stood that in preferred embodiments the document is a 
success HTTP response message with the document in the 
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body of the message. When the present application states 
that a server sends an account name and password request 
messf^e to the client, it should be understood that in 
preferred embodiments the account name and password 
5 request message is an unauthorized HTTP response, A client 
computer sends account name and password infonmation to 
a server as part of a request message with an authorization 
field. 

The software architecture underlying the particular pre- 
ferred embodiment is based upon the hypertext conventions 
of the World Wide Web. .^>pendix A describes the Hypertext 
Markup Language (HTML) document format used to rep- 
resent digital advertisements, Appendix B describes the 
HTML forms fill out support in Mosaic 2.0, Appendix C is 
a description of the Hypertext Transfer Protocol (HTTP) 
between buyer and merchant computers, Appendix D 
describes how documents are named with Uniform Resource 
Locators (URLs) in the network of computers, and >^pen- 
dix E describes the authentication of URLs using digital 
signatures. 

A printout of a computer program for use in creating and 
operating such a "store" in accordance with the present 
invention is provided as Appendix F. A printout of a com- 
puter program for use in operating other aspects of the 
network sales system in accordance with the present inven- 
^ tion is provided in Appendix G. 

There has been described a new and useful network-based 
sales system. It is apparent that those skilled in the art may 
make numerous modifications and departures from the spe- 
cific embodiments described herein without departing from 
^ the spirit and scope of the claimed invention. 

What is claimed is: 

1. A network-based sales system, comprising: 

a merchant database comprising a plurality of digital 
advertisements and a plurality of respective product 
fulfillment items; 

at least one creation computer for creating said merchant 
database; and 

at least one merchant computer for causing said digital 
^ advertisements to be transmitted to a user and for 
causing advertised products to be transmitted to said 
user; 

said creation computers, said merchant computer, and a 
payment computer being interconnected by a public 

45 packet switched computer network; 

said creation computer being programmed to create said 
merchant database, and to transmit said digital adver- 
tisements and said product fulfillment items over said 
network to said merchant computer; 

50 said merchant computer being programmed to receive 
said digital advertisements and product fulfillment 
items over said network, to receive over said network 
a request for a digital advertisement from a user, to 
cause said digital advertisement to be sent to said user 

55 over said network, to receive over said network from 
said user a product request message identifying an 
advertised product, to receive an access message over 
said network created by said payment computer, and to 
cause said product to be sent to said user in accordance 

60 with a product fulfillment item corresponding to said 
product and based upon receipt by the merchant com- 
puter of the access message. 

2. A network-based sales system in accordance with claim 

1. wherein each of said digital advertisements comprises an 
65 abstract of a product and a price. 

5. A network-based sales system in accordance with claim 

2, wherein: 
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at least one of said product fuIfiUmeDt items comprises a 

product itself; and 
said creation computer is programmed to transmit said 

product to said merchant computer with said digital 

advertisements. 

4, A network-based sales system in accordance with claim 
2, wherein: 

at least one of said product fiilfillmeot items comprises a 

hard good identifier; and 
said creation computer is programmed to transmit said 

hard good identifier to said merchant computer with 

said digital advertisements. 

5, A method of operating a merchant computer in a 
network-based sales system comprising a merchant database 
that comprises a plurality of digital advertisements and a 
pluraUty of respective product fulfillment items, at least one 
creation computer for creating said merchant database, and 
at least one merchant computer for causing said digital 
advertisements to be transmitted to a user and for causing 
advertised products to be transmitted to said user, and at 
least one payment computer^ said creation computer, said 
merchant computer, and said payment computer being inter- 
connected by a public packet switched computer network, 
said method comprising the steps of: 

receiving, at said merchant computer, said digital adver- 
tisements and said product fulfillment items, said digi- 
tal advertisements and said product fulfillment items 
having been transmitted over said network to said 
merchant computer by said creation computer, said 
merchant database comprising said digital advertise- 
ments and said product fulfillment items having been 
created by said creation computer, 

receiving over said network a request for a digital adver- 
tisement from a user; 

causing said digital advertisement to be sent to said user 
over said network; 

receiving over said network from said user a product 
request message identifying an advertised product; 

receiving over said network an access message created by 
said payment computer; and 

causing said product to be sent to said user in accordance 
with a product fulfillment item corre^onding to said 
product and based upon receipt by the merchant com- 
puter of the access message. 

6, A hypertext statement system, comprising: 

a client computer for operation by a client user; and 
a pluraUty of server computers for operation by a server 
user; 

said client computer and said server computers being 
interconnected by a public packet switched computer 
network; 

at least one of said server computers being programmed 
to record information pertaining to purchase transac- 
tion records in a database, each of said purchase 
transaction records comprising a product description, 
and to cause a statement document comprising said 
purchase transaction records to be transmitted to said 
client computer over said network; 

said client computer being programmed to display said 
product descriptions, to receive a request fiom said 
client user to display a product corresponding to a 
product description di^layed by said client computer, 
and to cause a product hypertext link derived from a 
purchase transaction record to be activated; 

at least one of said server computers, other than a server 
computer that transmitted said statement document to 



10 



15 



20 



25 



30 



35 



40 



45 



50 



55 



65 



said client computer, being programmed to respond to 
activation of said product hypertext link by causing 
said product to be sent to said client computer over said 
network. 

7. A hypertext statement system in accordance with claim 

6, wherein: 

said client computer is programmed to receive a request 
firom said client user to display transaction details 
corresponding to a product description displayed by 
said client computer and to cause a transaction detail 
hypertext link corresponding to said product descrip- 
tion to be activated; and 

at least one of said server computers is programmed to 
respond to activation of said transaction detail hyper- 
text link by transmitting said transaction details to said 
client computer as a transaction detail document. 

8. A hypertext statement system in accordance with claim 

7, wherein: 

said transaction detail document further comprises a cus- 
tomer service form hypertext link; 

said client computer is programmed to receive a request 
from said client user to display a customer service form 
and to cause said customer service form hypertext link 
to be activated; and 

at least one of said server computers is programmed to 
respond to activation of said customer service form 
hypertext link by transmitting said customer service 
form to said client computer. 

9. A hypertext statement system in accordance with claim 
6, wherein: 

said statement document further comprises a customer 

service form hypertext link; 
said client computer is programmed to receive a request 

from said client user to display a customer service form 

and to cause said customer service form hypertext link 

to be activated; and 
at least one of said server computers is programmed to 

respond to activation of said customer service form 

hypertext link by transmitting said customer service 

form to said client computer. 

10. A method of operating a server computer in a hyper- 
text statement system comprising a client computer for 
operation by a client user, and a plurality of server comput- 
ers for operation by a server user, said client computer and 
said server computers being interconnected by a public 
packet switched computer network, said method comprising 
the steps of: 

recording, at one of said server computers, information 
pertaining to purchase transaction records in a 
database, each of said purchase transaction records 
comprising a product description; and 

causing a statement document comprising said purchase 
transaction records to be transmitted to said cUent 
computer over said network; 

said client computer being programmed to display said 
product descriptions, to receive a request from said 
client user to display a product corresponding to a 
product description displayed by said client computer, 
and to cause a product hypertext link derived firom a 
purchase transaction record to be activated; 

at least one of said server computers, other than a server 
computer that U'ansmitted said statement document to 
said client computer, being programmed to respond to 
activation of said product hypertext link by causing 
said product to be sent to said client computer over said 
iKtwork. 
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11. A network payment system, comprising: 
at least one buyer computer for operation 



by a user 
desiring to buy a product; and 
at least ooe payment computer for pn)ccssiDg payment 

messages from said buyer computer; 
said buyer computer, said payment computer, and a mer- 
chant computer being interconnected by a public packet 
switched computer network; 
said buyer computer being programmed to cause a pay- 
ment message to be sent to said payment computer over 
said network; 

said payment computer being programmed to receive said 
payment message, to cause an access message to be 
created for transmission over said network to said 
merchant computer to enable said user to access said 
product upon verification by said merchant computer 
that said access message was created by said payment 
computer, and to record information pertaining to a 
purchase transaction record in said settlement database; 

said buyer computer being programmed to cause a request 
for a purchase transaction record to be sent to said 
payment computer over said network; and 

said payment computer being programmed to receive said 
request for said purchase transaction record and to 
cause a document derived from said purchase transac- 
tion record to be sent to said buyer computer over said 
network. 

12. The network payment system of claim 11 wherein the 
payment message comprises a product identifier identifying 
the product that the user desires to buy. 

13. A method of operating a payment computer in a 
network payment system comprising at least one buyer 
computer for operation by a user desiring to buy a product, 
and at least one payment computer for processing payment 
messages from said buyer computer, and at least one mer- 
chant computer, said buyer computer, said payment 
computer, and said merchant computer being interconnected 
by a public packet switched computer network, said method 
comprising the steps of: 

receiving, at said payment computer, a payment message 
that said buyer computer has caused to be sent to said 
payment computer over said network; 

causing an access message to be created for transmission 
to a merchant computer over said network to enable 
said user to access said product upon verification by 
said merchant computer that said access message was 
created by said payment computer; 

recording information pertaining to a purchase transaction 
record in said settlement database; 

receiving over said network a request for a purchase 
transaction record that said buyer computer has caused 
to be sent to said payment computer; and 

causing a document derived from said purchase transac- 
tion record to be sent to said buyer computer over said 
. network. 

14. The method of claim 13 wherein the payment message 
comprises a product identifier identifying the product that 
the user desires to buy. 

15. A hypertext statement system, comprising: 

a client computer for operation by a client user; and 
one or more server computers for operation by a server 
user; 

the client computer and the server computers being inter- 
connected by a public packet switched computer net- 
work; 
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at least one of the server computers being programmed to 
record information pertaining to purchase transaction 
records in a database, and to transmit a statement 
document comprising the purchase transaction records 
to the client computer over the network; 

the client computer being programmed to display the 
statement document to receive a request from the client 
user to display transaction details corresponding to a 
portion of the statement document displayed by the 
client computer, and to cause a transaction detail hyper- 
text link corresponding to the portion of the statement 
document to be activated; 

at least one of the server computers being programmed to 
respond to activation of the transaction detaO hypertext 
link by transmiuing the transaction details to the client 
computer over the network as a transaction detail 
document. 

16. A method of operating a server computer in a hyper- 
text statement system comprising a client computer for 
operation by a chent user, and one or more server computer? 
for operation by a server user, the client computer and the 
server computers being interconnected by a public packet 
switched computer network, the method comprising the 
steps of: 

recording, at one of the server computers, information 
pertaining to purchase transaction records in a data- 
base; and 

transmitting a statement document comprising the pur- 
chase transaction records to the client computer over 
the network; 

the client computer being programmed to display the 
statement document, to receive a request from the 
client user to display transaction details corresponding 
to a portion of the statement document displayed by the 
client computer, and to cause a transaction detail hyper- 
text link corresponding to the portion of the statement 
document to be activated; 

at least one of the server computers being programmed to 
re^ond to activation of the transaction detail hypertext 
link by transmitting the transaction details to the client 
computer over the networic as a transaction detail 
document. 

17. A network-based sales system, comprising: 

at least one buyer computer for operation by a user 

desiring to buy products; 
at least one shopping cart computer; and 
a shopping cart database connected to the shopping cart 

computer; 

the buyer computer and the shopping cart computer being 
interconnected by a public packet switched computer 
network; 

the buyer computer being programmed to receive a plu- 
rality of requests from a user to add a plurafity of 
respective products to a shopping cart in the shopping 
cart database, and, in response to the requests to add the 
products, to send a plurality of respective shopping cart 
messages over the network to the shopping cart com- 
puter each of which comprises a product identifier 
identifying one of the plurality of products and at least 
one of which comprises a universal resource locator; 

the shopping cart computer being programmed to receive 
the plurality of shopping cart messages, to modify the 
shopping cart in the shopping cart database to reflect 
the pluraUty of requests to add the plurality of products 
to the shopping cart, and to cause a payment message 
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associated with the shopping cart to be created, the the merchaat computer being programmed to receive the 

payment message comprising a universal resource access message, to cause (he access message authenti- 

locator; and cator to be verified to ensure that the access message 

the buyer computer being programmed to receive a authenlicator was created using the cryptographic key, 

request from the user to purchase the plurality of 5 and to cause the product to be received by the user 

products added to the shopping cart and to cause the desiring to buy the product. 

payment message to be activated to initiate a payment 20, A network-based sales system in accordance with 
transaction for the plurality of products added to the claim 19 wherein the buyer computer is programmed to 
shopping cart; cause the payment message to be sent to the payment 
the shopping cart being a stored representation of a 30 ^^P^^^^ by sending a purchase product message to the 
colleclionofproducts,theshoppingcartdatabasebeing computer, the merchant computer bemg pro- 
a database of stored representations of collections of '^^^^^ the purchase product message and in 
j.LL - ^ *L- response thereto, to send the payment message to the pay- 
products, and the shopping cart computer being a ^^^^ computer 

computer that modifies the stored representations of 2L A network-based sales system in accordance with 

collections of products m the database. 15 ^Uim 19 wherein the merchant computer is programmed 

18. A method of operatmg a shoppmg cart computer m a jts^if y^^ify the access message authenlicator. 

public packet switched computer networic comprising at 22. A network-based sales system in accordance with 

least one buyer computer for operation by a user desiring to claim 19 wherein the merchant computer is programmed to 

buy products, at least one shopping cart computer, atxi a cause every access message authenticator received by the 

shopping cart database connected to the shopping cart 20 merchant computer to be verified. 

computer, the method comprising the steps of: 23. A network-based sales system in accordance with 
receiving, at the shopping cart computer, a plurality of claim 19, wherein the payment message comprises a pay- 
shopping cart messages sent over the network to the ment amount. 

shopping can computer by the buyer computer in 24. A network-based sales system in accordance with 

response to receipt of a plurality of requests from a user 25 ^^^^^ wherein the payment computer is programmed to 

to add a plurality of respective products to a shopping ^^^^^ product identifier and the payment amount, 

carl in the shopping cart database, each of the shopping , ^5. A ne^vork-based sales system in accordance with 

cart messages comprising a product identifier identify- ^^^^^ ^ ^ P^^^f identifier and the payment 

ing one of the plurality of products and at least one of amount are recorded in a settlement database, 

which comprises a universal resource locator; 30 . ^ ^^^^^^^-b^^^ ^^^^ ^y^^^°^ ^" accordance with 

j.r • . * * • t. • ^ J * claim 19, wherein the payment message compnscs a mer- 

modifymg the shopping cart m the shoppmg cart database dj^Qt com uter identifier 

to reflect the plurality of requests to add the plurality of a ^ j l j 1 . j 

..^T.*^. . ' 27, A network-based sales system m accordance with 

products to the shopping cart; and , -^a . * . 

^ , . rr o claim 19, wherein the payment message compnscs a pay- 

causing a payment message associated with the shoppmg ^^^^ authenticator based on a cryptographic key. 

cart to be created, the payment message comprising a 35 ^ network-based sales system in accordance with 

universal resource locator; ^j^^^ 27, wherein the payment computer is programmed to 

the buyer computer being programmed to receive a verify the payment message authenticator to ensure that the 

request from the user to purchase the plurality of payment message authenticator was created using the cryp- 

products added to the shopping cart and to cause the tographic key, 

payment message to be activated to initiate a payment ^0 29. a network-based sales system in accordance with 
transaction for the plurality of products added to the ^^^^^ 19 ^^^^^^ j^e computer network is a public packet- 
shopping cart; switched communications network, 
the shopping cart being a stored representation of a 39. A method of operating a payment computer in a 
collection of products, the shopping cart database being computer network comprising at least one buyer computer 
a database of stored representations of collections of for operation by a user desiring to buy a product, at least one 
pre>ducts, and the shopping cart computer being a merchant computer, and at least one payment computer, the 
computer that modifies the stored representations of method comprising the steps of: 

collections of products in the database. receiving, at the payment computer, a payment message 

19. A network-based sales system, corapnsmg: t^at the buyer computer has caused to be sent to the 
at least one buyer computer for operation by a user ' payment computer in response to a user request for 

desiring to buy a product; purchasing a product, the payment message comprising 

at least one merchant computer; and a product identifier identifying the product; 

at least one payment computer; causing an access message to be created that comprises a 

the buyer computer, the merchant computer, and the 55 product identifier identifying the product and an access 

payment computer being interconnected by a computer message authenticator based on a cryptographic key; 

network; and 

the buyer computer being programmed to receive a user causing the access message to be sent to the merchant 

request for purchasing a product, and to cause a pay- computer, the merchant computer being programmed 

ment message to be sent to the payment computer that 60 to receive the access message, to cause the access 

comprises a product identifier identifying the product; message authenticator to be verified to ensure that the 

the payment computer being programmed to receive the access message authenticator was created using the 

payment message, to cause an access message to be cryptographic key, and to cause the product to be 

created that comprises a product identifier identifying re9eived by the user desiring to buy the product, 

the product and an access message authenticator based 65 31. A network-based sales system, comprising: 

on a cryptographic key, and to cause the access mes- at least one buyer computer for operation by a user 

sage to be sent to the merchant computer; and desiring to buy a product; 
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at least one merchaat computer; and 
at least one payment computer; 

the buyer computer, the merchant computer, and the 
payment computer being interconnected by a public 
packet switched computer network; ^ 

the buyer computer being programmed to receive a 
request from a user for purchasing a product, and to 
cause a payment message to be sent over the network 
to the payment computer; 

the payment computer being programmed to receive the 
payment message, and, if purchase of the product by 
the user has not been previously recorded in a settle - 
naent database, to cause the user to be charged for the 
product and to create a new record in the settlement ^5 
database reflecting purchase of the product by the user, 
to cause an access message to be created, and to cause 
the access message to be sent over the network to the 
merchaat computer; and 

the merchant computer being programmed to receive the 20 
access message and to cause the user to receive the 
product. 

32. The network-based sales system of claim 31 wherein: 
the payment computer is programmed to cause the access 

message to be created using a cryptographic key; and ^ 
at least one of the computers is programmed to use the 
access message in a cryptographic process to ensure 
that the user has paid for the product. 

33. A method of operating a payment computer in a public 
packet switched computer network comprising at least one 
buyer computer for operation by a user desiring to buy a 
product, at least one merchant computer, and at least one 
payment computer, the method comprising the steps of: 

receiving, at the payment computer, a payment message 
that the buyer computer has caused to be sent over the 
network to the payment computer in response to a 
request from a user for purchasing a product, and, if 
purchase of the product by the user has not been 
previously recorded in a settlement database, causing ^ 
the user to be charged for the product and creating a 
new record in the settlement database reflecting pur- 
chase of the product by the user; 
causing an access message to be aeated; and 
causing the access message to be sent over the network to 45 
the merchant computer, the merchant computer being 
programmed to receive the access message and to cause 
the user to receive the product. 

34. The method of claim 33 wherein at least one of the 
computers is programmed to use the access message in a so 
cryptographic process to ensure that the user has paid for the 
product. 

35. A network-based sales system, comprising: 

at least one buyer computer for operation by a user 

desiring to buy products; 55 
at least one shopping cart computer; and 
a shopping carl database connected to the shopping cart 
computer, 

the buyer computer and the shopping cart computer being ^ 
interconnected by a public packet switched computer 
network; 

the buyer computer being programmed to receive a plu- 
rality of requests from a user to add a plurality of 
respective products to a shopping carl in the shopping 65 
cart database, and, in response to the requests to add the 
products, to send a plurality of respective shopping cart 
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messages over the network to the shopping cart com- 
puter each of which comprises a product identifier 
identifying one of the plurality of products; 
the shopping cart computer being programmed to receive 
the plurality of shopping cart messages, and to modify 
the shopping cart in the shopping cart database to 
reflect the plurality of requests to add the plurality of 
products to the shopping cart; and 
the buyer computer being programmed to receive a 
request from the user to purchase the plurality of 
products added to the shopping cart and to cause a 
payment message to be activated to initiate a payment 
transaction for the plurality of products added to the 
shopping cart; 

the shopping cart being a stored representation of a 
collection of products, the shopping cart database being 
a database of stored representations of collections of 
products, and the shopping cart computer being a 
computer that modifies the stored representations of 
collections of products in the database. 

36. A method of operating a shopping cart computer in a 
public packet switched computer network comprising at 
least one buyer computer for operation by a user desiring to 
buy products, at least one shopping cart computer, and a 
shopping cart database connected to the shopping cart 
computer, the method comprising the steps of: 

receiving, at the shopping cart computer, a plurahty of 
shopping cart messages sent over the network to the 
shopping cart computer by the buyer computer in 
response to receipt of a plurality of requests from a user 
to add a plurality of respective products to a shopping 
cart in the shopping cart database, each of the shopping 
cart messages comprising a product identifier identify- 
ing one of the plurality of products; and 

modifying the shopping cart in the shopping cart database 
to reflect the plurality of requests to add the plurality of 
products to the shopping cart; 

the buyer computer being programmed to receive a 
request from the user to purchase the plurality of 
products added to the shopping cart and to cause a 
payment message to be activated to initiate a payment 
transaction for the plurality of products added to the 
shopping cart; 

the shopping cart being a stored representation of a 
collection of products, the shopping cart database being 
a database of stored representations of collections of 
products, and the shopping cart computer being a 
computer that modifies the stored representations of 
collections of products in the database. 

37. A network-based sales system, comprising: 

a merchant database comprising a plurality of digital 
advertisements and a plurality of respective product 
fulfillment items; 

at least one creation computer for creating the merchant 
database; and 

at least one merchant computer for causing the digital 
advertisements to be transmitted to a user and for 
causing advertised products to be transmitted to the 
user; 

the creation computer and the merchant computer being 
interconnected by a public packet switched computer 
network; 

the creation computer being programmed to create the 
merchant database, and to transmit the digital adver- 
tisements and the product fulfillment items over the 
network to the merchant computer; 
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the merchant computer being programmed to receive the 
digital advertisements and product fulfillment items 
over the network, to receive over the network a request 
for a digital advertisement from a user, to cause the 
digital advertisement to be sent to the user over the 5 
network, to receive over the network from the user a 
product request message identifying an advertised 
product, and to cause the product to be sent to the user 
in accordance with a product fulfillment item corre- 
sponding to the product; lo 
at least a portion of the digital advertisements transmitted 
by the creation computer to the merchant computer 
over the network being authenticated by at least one 
digital signature. 
38. A method of operating a merchant computer in a ^5 
network-based sales system comprising a merchant database 
that comprises a plurality of digiul advertisements and a 
plurality of respective product fulfiUment items, at least one 
creation computer for creating the merchant database, and at 
least one merchant computer for causing the digital adver- 20 
tisements to be transmitted to a user and for causing adver- 
tised products to be transmitted to the user, the creation 
computer and the merchant computer being interconnected 
by a public packet switched computer network, the method 
comprising the steps of: 



.492 

20 

receiving, at the merchant computer, the digital advertise- 
ments and the product fulfillment items, the digital 
advertisements and the product fulfillment items hav- 
ing been transmitted over the network to the merchant 
computer by the creation computer, the merchant data- 
base comprising the digital advertisements and the 
product fulfillment items having been created by the 
creation computer; 

receiving over the network a request for a digital adver- 
tisement from a user; 

causing the digital advertisement to be sent to the user 
over the network; 

receiving over the network from the user a product 
request message identifying an advertised product; and 
causing the product to be sent to the user in accordance 
with a product fulfillment item corresponding to the 
product; 

at least a portion of the digital advertisements transmitted 
by the creation computer to the merchant computer 
over the network being authenticated by at least one 
digital signature. 

* * * * * 



